Virtual Member Manager
Here is some more theory about the Virtual member manager the part of WAS that managed the federated repositories.
Virtual member manager provides a secure facility to support customer’s basic organizational entity management needs. Organisational entities refer to entities that are common to most organisations, such as people, login accounts, business units, security roles, and business roles.
Virtual member manager provides a model of the organizational entities that serves the basic needs of a variety of applications and hides from them the disparate repositories that can be used underneath.
Virtual member manager performs only limited information integration and does not perform any synchronization among multiple repositories. Virtual member manager provides a uniform abstraction layer that can be used to manage and to securely access the information on organizational entities.
The virtual member manager user registry provides user registry functions and allows WebSphere security to be enabled using virtual member manager. Virtual member manager can also be used in a WebSphere Application Server environment in combination with other user registry adapters (for example, WebSphere Application Server LDAP, WebSphere Application Server OS, and custom user registry).
Virtual member manager is installed as a WebSphere system application during the installation of WebSphere Application Server. See the WebSphere Application Server documentation for installation instructions.
The main configuration file is called wimconfig.xml. This file stores the virtual member manager settings at the global (admin) level or at the domain level in a multiple security domain environments.
When virtual member manager is started, during initialisation, the virtual member manager core component retrieves configuration data using the virtual member manager Configuration API. Some of the configuration data is passed to the various adapters for their own initialisation. This file contains the following information:
- General configuration information applicable to the specific instance of virtual member manager
- Schema and schema extension file names and locations
- Information about supported entity types such as their RDN property and default parent entry in the virtual member manager hierarchy
- Repository information (what repositories are configured, for example DB, LDAP, or Custom)
- Whether entry mapping repository and property extension repository are enabled
- Mapping of entries in the virtual member manager hierarchy to the underlying repositories
INTRODUCTION
JEE SECURITY
GLOBAL SECURITY
UNSECURE CONSOLE
TURNING ON GLOBAL SECURITY
Security Configuration Wizard
Virtual Member Manager
ROLE MANAGEMENT
Administrative roles
DISABLING GLOBAL SECURITY
SETTING THE INTERNAL REPOSITORY USING SCRIPTING
APACHEDS
Installing ApacheDS
Adding a new partition
ADDING LDAP TO A FEDERATED REPOSITORY
FEDERATED REPOSITORIES RECAP
Security settings
Wimconfig.xml
CHANGING THE OU FOR LDAP BIND
Looking at User Groups
STANDALONE LDAP
CONFIGURING THE STANDALONE LDAP SERVER
TESTING THE CONNECTION
REVIEW OF SECURITY.XML
SUMMARY
To learn more about the courses available from The Middleware Shop, please go to http://www.themiddlewareshop.com/products to see a full list of the current courses available.
Consulting
If you or your organization require support in architecture, performance tuning, automation or simply advice, then please contact me via my support site and request a conversation, where we can discuss your requirement.
About Steve
Steve is a seasoned passionate technology professional, strategist and leader.
An expert in technical communications, and adept in almost all forms of Internet and mobile related technology, Steve has time and time again proven his tenacity to improve systems around him and deliver.
Steve has worn many hats during his career such as Chief Technical Officer, Founding Member of several business ventures, Programmer, Systems Administrator, Architect, Blogger and Published Author to name a few.
Due to 20 years Industry experience in Middleware, Programming, Networks and Internet Technologies, He combines systems knowledge with efficient working methods and inter personal skills required to build effective relationship with clients and colleagues alike. Exceeding typical expectations in any role undertaken, Steve is certain to become a valuable asset within any organisation He joins.
Key Skills
• Leadership (Team, Project, Business, People).
• Architecture (Solutions, Information, Technical, Applications).
Simply, I help you deal with CANETI: Constant And Never Ending Technological Innovation
Specific IBM WebSphere skills:
WebSphere Application Server (WAS Base, WAS ND & Liberty Profile & Liberty Runtime)
- Automation
- Security, SSL
- Dev Ops
- Architecture
- Performance Tuning
Middleware Integration Skills:
- .NET programming, and Architecture
- Java Programming, and Architecture
- SOA, SOAP and XML messaging
- JBoss Fuse, WMQ, IIB, Mule
Integration Skills:
- SOA
- Process Improvement
- ICD’s
- Messaging Architecture
- Governance
General Digital Architecture & Governance
- Lightweight Architectures
- Digital Strategy, platform stacks for example IAAS, PAAS, SAAS
- PCI DSS
Industry Qualifications & Recognition
- TOGAF 9.1
- IBM Champion 2013